Closed n0vad3v closed 2 years ago
Someone is attempting to deploy a commit to a Personal Account owned by @djyde on Vercel.
@djyde first needs to authorize it.
Maybe we can change Vercel check here as it seems shows fail on every PR 🤔.
I've added a workflow on GitHub action which will run on every PR, it will try to build the image and use trivy to scan the newly built image for security issues and then comment on PR.
nice work!
Could you please make a new PR that target the main branch?
OK, so what's happening in https://github.com/djyde/cusdis/pull/210?
I've created PR at: https://github.com/djyde/cusdis/pull/211
This PR changes the
Dockerfile
for this project, introduces three changes:node:15.14.0-alpine3.10
tonode:16-alpine3.15 as builder
, similar to PR: https://github.com/djyde/cusdis/pull/161npx browserslist@latest --update-db
when buildingHowever, there are still some security issues with the new image that needs to be fixed: